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DETAILED ACTION 
Claim Rejections - 35 USC § 103 

1 . The following is a quotation of 35 U.S. C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

2. Claims 1-12 are rejected under 35 U.S.C. 103(a) as being unpatentable over Terrell et al 
(U.S. 2002/0188720) and further in view of Brown et al (U.S. 5,941,947). 

As per claims 1 ,2 Terrell disclosed a network access control method for a network system 
comprising: network apparatuses having packet filtering functions; a service server connected 
with an IP network via the network: apparatus, providing contents on the service server to a user; 
a user terminal connected with the IP network via the network apparatus, for the user to utilize 
the contents on the service server; a reception server connected with the IP network via the 
network apparatus (Page. 2, Paragraph. 0024), receiving an access request to the contents on the 
on the service server from the user on behalf of the service server; and an access control server 
controlling the network apparatus, said method comprising the steps of: a) said access control 
server first denying all the access requests directed to the content on the service server via 
network apparatus; b) said reception server receiving access request information from said user 
terminal, and registering the received access request information in access list; and c) said access 
control server extracting such an amount of the received access request information from said 
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access list , based on a processing capability of the service server and a traffic amount for the 
service server (Page. 2, Paragraph. 0023). 

However Terrell did not disclose in detail "as that said service server can optimally deal with and 
performing traffic control to the network apparatus connected with the user terminals so as to 
allow the user terminal to directly access the concerns on the service server in the other of access 
requests". 

In the same field of endeavor Brown disclosed, "The access rights of the users of the network 
with respect to the various user-accessible content objects are specified by access rights data that 
is stored within an access rights database. The access rights database is implemented as relational 
database on one or more security servers. Which are connected to the application servers by a 
local area network. The access rights data is stored within the relational database in association 
with multiple content category identifiers, or tokens, which identify categories or groupings of 
content objects (such as "internal public data", "Internet public data", and 18-and older only 
data") for security purposes (col. 2, lines 58-67 & col. 3, lines 1-5). 

It would have been obvious to one having ordinary skill in the art the time of the invention was 
made to have incorporated The access rights of the users of the network with respect to the 
various user-accessible content objects are specified by access rights data that is stored within an 
access rights database. The access rights database is implemented as relational database on one 
or more security servers. Which are connected to the application servers by a local area network. 
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The access rights data is stored within the relational database in association with multiple content 
category identifiers, or tokens, which identify categories or groupings of content objects (such as 
"internal public data", "Internet public data", and 18-and older only data") for security purposes 
by Brown in the method and system of Terrell to manage the access rights list with millions of 
entries and to introduce a flexible and efficient define new types of access operations as new on- 
lines services and new content entitles are created. 

3. As per claim 3 Terrell-Brown disclosed: a user profile holding the user information 
including a user class for each user; an access receiving part receiving an access from the user 
terminal (Page. 3, Paragraph. 0026); an access receiving part receiving the access request 
information received via said access receiving part into said access list in order of the reception a 
user class extracting part extracting an IP address from the received access request information, 
and identifying the user by using the extracted IP address so as to extract the user class from said 
user profile (Page. 5, Paragraph. 0045); and a by-user-class registering part registering the access 
request information received via said access receiving part into said access list based on the user 
class extracted through said user class extracting part (Terrell , page. 5, Paragraph. 0049). 

4. As per claim 4 Terrell-Brown disclosed an estimated waiting time calculating an 
estimated waiting time, from the number of the users waiting, according to a position of said 
access list at which the access request received from the user terminal is registered (Brown, col. 
17, lines 5-1 1); and an access information reporting part reporting the calculated estimated 
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waiting time to the user, and reporting to the user that the access can be performed after the 
estimated waiting time elapsed (Brown, col. 18, lines 51-56). 

5. As per claim 5 Terrell disclosed further comprising: an access confirming part 
determining whether or not the access request is to be registered in said access list, when waiting 
is needed, after receiving the access request from the user terminal; and a waiting confirmation 
inquiring part inquiring to the user for said access confirming part to make the determination 
(Terrell, Page. 4, Paragraph 0036). 

6. As per claim 6 Terrell disclosed an access control server comprising: a access 
information database holding information concerning a processing capability of a service server 
and a maximum permissible access number calculated based on the processing capability of the 
service server (Terrell, Page. 3, Paragraph 0026); a traffic control part controlling a network 
apparatus; a static permissible access number calculating part calculating the maximum 
permissible access number based on the information concerning the processing capability of the 
service server; and a filtering optimizing part reading such an amount of access request 
information from an access list holding the access request information from user terminals in a 
reception server (Terrell, Page. 4, Paragraph 0034), from the top, as that for the maximum 
permissible access number, producing packet filtering setting information for the users making 
access requests to be able to access to the service server, and setting the produced information in 
the network apparatus via said traffic control part (Terrell, Page. 5, Paragraph 0044). 
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7. As per claim 7 Terrell disclosed further comprising: a load and traffic monitoring part 
monitoring a load condition of the service server and a traffic condition of a network apparatus 
holding the service server; and a dynamic permissible access number calculating part- 
periodically performing communication with said load and traffic monitoring part so as to extract 
therefrom information of the load condition and traffic condition (Terrell, Page. 4, Paragraph 
0037), and calculate the maximum permissible access number therefrom, and, also, registering 
the calculated maximum permissible access number in the access information database (Terrell. 
Page. Paragraph. 0048). 

8. As per claim 8 Terrell disclosed further comprising: a control information database 
holding control information which is used as a guideline for reading the access request 
information from the access list; and a by-user-class access request reading part reading the 
access request information from the access list for each user class based on the control 
information extracted from said control information database (Terrell, Page. 5, Paragraph. 0049), 
when the filtering optimizing part reads such an amount of the access request information from 
the access list as that for the maximum permissible access number, in a case where the access 
request information is registered in the access list by user class (Terrell, Page. Paragraph. 0048). 

9. As per claim 9 Terrell disclosed further comprising: an effective timer setting part setting 
an effective timer for the access request information when the packet filtering setting information 
is produced; and a filtering canceling part canceling the packet filtering control set in the 
network apparatus, when the effective timer has expired (Terrell, Page. 5, Paragraph 0046). 
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10. As per claim 10 Terrell disclosed a service server connected with an IP network via a 
network apparatus and providing a service to a user, comprising: a session finish determining 
part determining that a session performed with a user terminal has finished; and a session finish 
reporting part reporting to an access control server that the session performed with the user 
terminal has finished (Terrell, Page. 5, Paragraph. 0045). 

11. As per claim 1 1 Terrell disclosed further comprising a user authenticating part 
determining, based on the user class extracted through the user class extracting part, whether or 
not the received access request is given from an un allowed user, and, reporting, when the access 
request is given from the un allowed user, this matter to the access control server (Terrell, Page. 
5, Paragraph 0045). 

12. As per claim 12 Terrell disclosed further comprising an access un allowance filtering 
setting part producing, based on a report from the user authenticating part of the reception server 
claimed in claim 1 1 , the packet filtering setting information of access un allowance for the 
service server, and setting the produced information in the network apparatus (Terrell, Page. 5, 
Paragraph 0045). 
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Response to Arguments 

Applicant's arguments filed 10/25/2007 have been fully considered but they are not persuasive. 
Response to applicant's argument is as follows. 

A. Applicant argued that cited portion of Terrell et al does not disclose or suggest, 
"registering" or holding" the received trigger notification". 

As to applicant's argument Terrell disclosed, "If controller determines that the necessary profile 
is not installed, controller forwards the trigger notification received from filter to bandwidth 
broker which correlates the correlates the trigger notification with the appropriate classifier 
profile" (Page. 5, Paragraph. 0045). One ordinary skill in the art at the time of the invention 
knows that use of correlating in the above paragraph is same as registering. 

B. Applicant argued that prior art did not disclose, "An access control server that applies 
access control based on determining a processing capability and traffic amount associated with 
the requested service server". 

As to applicant's argument Terrell disclosed, "Communicatively coupled to a network core 
device via network device as shown. Those skilled in the art will appreciate, from the description 
to follow, the network edge services and/or incorporating the teachings of the present invention 
dynamically provision the differentiated services offered by and through core devices on an as- 
needed, as-authorized basis thereby minimizing the resources required of the network edge 
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device and the network support differentiated services. More specifically, network edge devices 
and/or, in conjunction with a bandwidth broker, dynamically create and remote filters that when 
triggered, initiate an admission controlling provision and access to the differentiated services of 
data network" (Page. 2, Paragraph. 0023). 

C. Applicant argued that prior art did not disclose," Applicant's reception server that 
registers and holds an access request in an access registering part until extracted by an access 
control server upon confirming that the user request may be optimally filled by the service 
server". 

As to applicant's argument Terrell disclosed, "If controller determines that the necessary profile 
is not installed, controller determines that the necessary profile is not installed, controller 
forwards the trigger notification received from the filter to bandwidth broker looks up the 
received the trigger in the admissions policy database to identify an associated classifier profile. 
Once the appropriate classifier profile is identified it is sent to classifier via controller in an 
updated message" (Page. 5, Paragraph 0045). 

D. Applicant argued that prior did not disclose, "The filter information determined by 
reference to the process capability of a service server". 

As to applicant's argument Terrell disclosed, "Once in place, filter issues a trigger message to 
controller when data packets are received satisfying the criteria of an installed filter" (Page. 4, 
Paragraph 0034). 
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E. Applicant argued that prior art did not disclose, "receiving access request information 
from user terminals, registering the received access request information in an access list, and 
correspondingly, extracting an amount of the received access request information from the 
access list as that a service server can optimally deal with, based on a processing capability of the 
service server and a traffic amount for the service server". 

As to applicant's argument Terrell disclosed, "In accordance with the information provided by 
admission control policy database, such packets are marked for expedited forwarding with a 
through put rate of 10 Mbps, no burst in accordance with profile. Packets corresponding to 
classifier before 9:00 AM or after 5 PM will be marked for best-effort delivery, in accordance 
with profiles 514 and 516. Similarly, profiles 518-522 denote service level support for network 
traffic defined by classifier 504" (Page. 6, Paragraph, 0049). 



Conclusion 

14. Any inquiry concerning this communication or earlier communication from the examiner 
should be directed to Adnan Mirza whose telephone number is (571)-272-3885. 

15. The examiner can normally be reached on Monday to Friday during normal business 
hours. If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Jason Cardone can be reached on (571)-272-3933. The fax for this group is (703)- 
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746-7239. The fax phone number for the organization where this application or proceeding is 
assigned is 571-273-8300. 

16. Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for un published 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto. g ov . Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at (866)-2 17-9 197 (toll-free). 

Adnan Mirza 
Examiner 



/Jason D Car done/ 
Supervisory Patent Examiner, Art Unit 2145 



